fix(init-realm): change role assignment (#38)

- remove view_wallet from Dataspace Discovery
- assign Identity Wallet Management to technical user which previously had Connector User assigned

CHANGELOG.md

@@ -24,10 +24,11 @@ New features, fixed bugs, known defects and other noteworthy changes to each rel
   * created role "view_managed_idp" inside the Cl2-CX-Portal client and assigned it to the composite roles "IT Admin" and "Company Admin"
   * assigned role "view_semantic_models" from the Cl3-CX-Semantic client to the composite role "Semantic Model Management" from the technical_roles_management client
   * assigned role "view_membership" from the Cl2-CX-Portal client to the composite role "CX Membership Info" from the technical_roles_management client
-  * assigned roles "view_bpn_discovery", "add_bpn_discovery" and "delete_bpn_discovery" from of the Cl22-CX-BPND client, the role "view_discovery_endpoint" from of the Cl21-CX-DF client and role "view_wallet" from of the Cl5-CX-Custodian client to the composite role "Dataspace Discovery" from the technical_roles_management client
+  * assigned roles "view_bpn_discovery", "add_bpn_discovery" and "delete_bpn_discovery" from of the Cl22-CX-BPND client, the role "view_discovery_endpoint" from of the Cl21-CX-DF client to the composite role "Dataspace Discovery" from the technical_roles_management client
   * created roles "configure_partner_registration" and "create_partner_registration" inside the Cl2-CX-Portal client
   * assigned role "create_partner_registration" to the composite role "Registration External" from the technical_roles_management client
   * assigned role "configure_partner_registration" to the composite roles "Company Admin" and "IT Admin"
+  * assigned composite roles Semantic Model Management", "Dataspace Discovery" and "Identity Wallet Management" from the technical_roles_management client to service account sa-cl3-cx-1
   * created composite role "Offer Management" in client technical_roles_management and associated client roles "add_service_offering", "add_connectors" and "activate_subscription" from Cl2-CX-Portal
   * created the client "Cl16-CX-BPDMGate" with the client roles "view_company_data", "update_company_data" and "view_shared_data" and assigned those to service account sa-cl7-cx-5
   * deleted the composite roles "App Tech User", "Connector User" and "Service Management" from client technical_roles_management

charts/centralidp/values.yaml

@@ -48,7 +48,7 @@ keycloak:
       mountPath: "/realms"
   initContainers:
     - name: import
-      image: tractusx/portal-iam:pr29
+      image: tractusx/portal-iam:pr38
       imagePullPolicy: Always
       command:
         - sh
@@ -178,7 +178,7 @@ seeding:
       mountPath: "app/realms"
   initContainers:
     - name: init-cx-central
-      image: tractusx/portal-iam:pr29
+      image: tractusx/portal-iam:pr38
       imagePullPolicy: Always
       command:
         - sh

charts/sharedidp/values.yaml

@@ -52,7 +52,7 @@ keycloak:
       mountPath: "/realms"
   initContainers:
     - name: import
-      image: tractusx/portal-iam:pr29
+      image: tractusx/portal-iam:pr38
       imagePullPolicy: Always
       command:
         - sh

consortia/argocd-app-templates/centralidp/appsetup-templateconsortia.yaml

@@ -28,7 +28,7 @@ spec:
   source:
     path: charts/centralidp
     repoURL: 'https://github.com/eclipse-tractusx/portal-iam.git'
-    targetRevision: upgrade/update-init-realm-json-files
+    targetRevision: main
     plugin:
       env:
         - name: AVP_SECRET

consortia/argocd-app-templates/centralidp/appsetup-templategeneric.yaml

@@ -28,7 +28,7 @@ spec:
   source:
     path: charts/centralidp
     repoURL: 'https://github.com/eclipse-tractusx/portal-iam.git'
-    targetRevision: upgrade/update-init-realm-json-files
+    targetRevision: main
     plugin:
       env:
         - name: AVP_SECRET

consortia/argocd-app-templates/sharedidp/appsetup-templateconsortia.yaml

@@ -28,7 +28,7 @@ spec:
   source:
     path: charts/sharedidp
     repoURL: 'https://github.com/eclipse-tractusx/portal-iam.git'
-    targetRevision: upgrade/update-init-realm-json-files
+    targetRevision: main
     plugin:
       env:
         - name: AVP_SECRET

consortia/argocd-app-templates/sharedidp/appsetup-templategeneric.yaml

@@ -28,7 +28,7 @@ spec:
   source:
     path: charts/sharedidp
     repoURL: 'https://github.com/eclipse-tractusx/portal-iam.git'
-    targetRevision: upgrade/update-init-realm-json-files
+    targetRevision: main
     plugin:
       env:
         - name: AVP_SECRET

consortia/environments/centralidp/values-templateconsortia.yaml

@@ -22,7 +22,7 @@ keycloak:
   proxy: edge
   initContainers:
     - name: import
-      image: tractusx/portal-iam-consortia:pr29
+      image: tractusx/portal-iam-consortia:pr38
       imagePullPolicy: Always
       command:
         - sh
@@ -70,7 +70,7 @@ seeding:
   image: "tractusx/portal-iam-seeding:dev"
   initContainers:
     - name: init-cx-central
-      image: tractusx/portal-iam-consortia:pr29
+      image: tractusx/portal-iam-consortia:pr38
       imagePullPolicy: Always
       command:
         - sh

consortia/environments/centralidp/values-templategeneric.yaml

@@ -22,7 +22,7 @@ keycloak:
   proxy: edge
   initContainers:
     - name: import
-      image: tractusx/portal-iam:pr29
+      image: tractusx/portal-iam:pr38
       imagePullPolicy: Always
       command:
         - sh
@@ -70,7 +70,7 @@ seeding:
   image: "tractusx/portal-iam-seeding:rc"
   initContainers:
     - name: init-cx-central
-      image: tractusx/portal-iam:pr29
+      image: tractusx/portal-iam:pr38
       imagePullPolicy: Always
       command:
         - sh

consortia/environments/sharedidp/values-templateconsortia.yaml

@@ -41,7 +41,7 @@ keycloak:
       mountPath: "/secrets"
   initContainers:
     - name: import
-      image: tractusx/portal-iam-consortia:pr29
+      image: tractusx/portal-iam-consortia:pr38
       imagePullPolicy: Always
       command:
         - sh

consortia/environments/sharedidp/values-templategeneric.yaml

@@ -36,7 +36,7 @@ keycloak:
       mountPath: "/realms"
   initContainers:
     - name: import
-      image: tractusx/portal-iam:pr29
+      image: tractusx/portal-iam:pr38
       imagePullPolicy: Always
       command:
         - sh